1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
samba-mirror/docs-xml/smbdotconf/ldap
Gary Lockyer 3149ea0a8a CVE-2020-10704: libcli ldap_message: Add search size limits to ldap_decode
Add search request size limits to ldap_decode calls.

The ldap server uses the smb.conf variable
"ldap max search request size" which defaults to 250Kb.
For cldap the limit is hard coded as 4096.

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2020-05-04 02:59:32 +00:00
..
clientldapsaslwrapping.xml docs:smbdotconf: add enumlist property to parameters where missing 2015-07-31 01:55:29 +02:00
ldapadmindn.xml docs-xml: remove explicit "constant" 2019-11-27 10:25:37 +00:00
ldapconnectiontimeout.xml docs:smbdotconf: make formatting of headers uniform. 2015-07-31 01:55:29 +02:00
ldapdeletedn.xml docs:smbdotconf: make formatting of headers uniform. 2015-07-31 01:55:29 +02:00
ldapderef.xml docs:smbdotconf: add enumlist property to parameters where missing 2015-07-31 01:55:29 +02:00
ldapfollowreferral.xml docs:smbdotconf: add enumlist property to parameters where missing 2015-07-31 01:55:29 +02:00
ldapgroupsuffix.xml docs-xml: remove explicit "constant" 2019-11-27 10:25:37 +00:00
ldapidmapsuffix.xml docs-xml: remove explicit "constant" 2019-11-27 10:25:37 +00:00
ldapmachinesuffix.xml docs-xml: remove explicit "constant" 2019-11-27 10:25:37 +00:00
ldapmaxanonrequest.xml CVE-2020-10704: smb.conf: Add max ldap request sizes 2020-05-04 02:59:32 +00:00
ldapmaxauthrequest.xml CVE-2020-10704: smb.conf: Add max ldap request sizes 2020-05-04 02:59:32 +00:00
ldapmaxsearchrequest.xml CVE-2020-10704: libcli ldap_message: Add search size limits to ldap_decode 2020-05-04 02:59:32 +00:00
ldappagesize.xml Change default LDAP page size to 1000. 2016-01-15 00:54:26 +01:00
ldappasswdsync.xml docs:smbdotconf: add enumlist property to parameters where missing 2015-07-31 01:55:29 +02:00
ldapreplicationsleep.xml docs:smbdotconf: make formatting of headers uniform. 2015-07-31 01:55:29 +02:00
ldapsameditposix.xml docs:smbdotconf: make formatting of headers uniform. 2015-07-31 01:55:29 +02:00
ldapsamtrusted.xml docs:smbdotconf: make formatting of headers uniform. 2015-07-31 01:55:29 +02:00
ldapserverrequirestrongauth.xml CVE-2016-2112: docs-xml: change the default of "ldap server require strong auth" to "yes" 2016-04-12 19:25:25 +02:00
ldapssl.xml docs: Add missing spaces in man smb.conf. 2017-02-09 23:58:02 +01:00
ldapsslads.xml params: mark "ldap ssl ads" as deprecated 2018-01-13 08:24:08 +01:00
ldapsuffix.xml docs-xml: remove explicit "constant" 2019-11-27 10:25:37 +00:00
ldaptimeout.xml docs:smbdotconf: make formatting of headers uniform. 2015-07-31 01:55:29 +02:00
ldapusersuffix.xml docs-xml: remove explicit "constant" 2019-11-27 10:25:37 +00:00